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AMENDMENTS TO THE CLAIMS 



1 1 . (Currently Amended) A method, comprising the computer-implemented steps of: 

2 receiving trust information defining one or more trusted signatories; 

3 receiving configuration information comprising a hostname, one or more 

4 configuration directives for a host network element associated with the 

5 hostname, and one or more digital signatures of the hostname and 

6 configuration directives; 

7 attempting to verify the one or more digital signatures based on the trust information; 

8 verifying that two or more digital signatures, from the one or more digital signatures, 

9 are valid and that two or more principals respectively associated with the two 

10 or more digital signatures have collective authority to perform the 

11 configuration directives on the host network element; 

12 applying the configuration directives to [[a]] the host network element only when the 

13 one or more digital signatures are verified successfully. 

1 2. (Canceled) 

1 3. (Original) A method as recited in Claim 1 , further comprising the steps of: 

2 receiving, in association with a particular configuration directive, security 

3 information defining a number of required signatures and required principals; 

4 applying the particular configuration directive only when the configuration 

5 information has the number of required signatures by the required principals. 

1 4. (Original) A method as recited in Claim 1 , further comprising the steps of: 

2 receiving, in association with a particular configuration directive, security 

3 information defining a number of required signatures and required principals; 

4 applying the particular configuration directive only when the configuration 

5 information has the number of required signatures by the required principals 

6 and only upon successively validating all required signatures. 
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1 5. (Original) A method as recited in Claim 1 , wherein the digital signatures use 

2 public key cryptography, and wherein public keys for the digital signatures are stored 

3 on the host. 

1 6. (Original) A method as recited in Claim 1 , wherein the digital signatures use 

2 public key cryptography, wherein public keys for the digital signatures are stored on a 

3 key server and retrieved from the key server as part of attempting to validate the 

4 digital signatures. 

1 7. (Original) A method as recited in Claim 1 , wherein the digital signatures use 

2 public key cryptography, and wherein public keys for the digital signatures received 

3 in a digital certificate and extracted from the digital certificate as part of attempting to 

4 validate the digital signatures. 

1 8. (Original) A method, comprising the computer-implemented steps of: 

2 receiving trust information defining one or more trusted signatories; 

3 receiving configuration control information that includes a time period during which 

4 a valid digital signature is required for applying one or more particular 

5 configuration directives; 

6 receiving configuration information comprising a hostname, one or more 

7 configuration directives for a host network element associated with the 

8 hostname, one or more digital signatures of the hostname and configuration 

9 directives, and a date-time value; 

1 0 determining if the date-time value is within the time period; 

1 1 determining if the one or more configuration directives have been previously received 

1 2 during the time period; and 

13 only when the date-time value is within the time period and the one or more 

1 4 configuration directives have not been previously received during the time 

1 5 period, attempting to verify the one or more digital signatures based on the 

1 6 trust information, and applying the configuration directives to a network 

1 7 element only when the one or more digital signatures are verified successfully. 
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1 9. (Original) A method as recited in Claim 8, wherein the step of determining if the 

2 one or more configuration directives have been previously received during the time 

3 period comprises the steps of: 

4 generating a secure hash of the one or more configuration directives; 

5 determining if the secure hash is found in memory. 

1 10. (Original) A method as recited in Claim 8, wherein the step of determining if the 

2 one or more configuration directives have been previously received during the time 

3 period comprises the steps of: 

4 generating a secure hash of the one or more configuration directives; 

5 determining if the secure hash is found in non- volatile memory. 

1 11. (Original) A method as recited in Claim 8, further comprising the step of storing 

2 the secure hash in non- volatile memory, in association with an expiration value, when 

3 the date-time value is within the time period and the one or more configuration 

4 directives have not been previously received during the time period. 

1 12. (Original) A method as recited in Claim 8, further comprising the steps of: 

2 verifying that the one or more digital signatures is valid and that one or more 

3 principals respectively associated with the digital signatures have collective 

4 authority to perform the directives on the host. 

1 13. (Original) A method as recited in Claim 8, further comprising the steps of: 

2 receiving, in association with a particular configuration directive, security 

3 information defining a number of required signatures and required principals; 

4 applying the particular configuration directive only when the configuration 

5 information has the number of required signatures by the required principals. 

1 14. (Original) A method as recited in Claim 8, further comprising the steps of: 

2 receiving, in association with a particular configuration directive, security 

3 information defining a number of required signatures and required principals; 
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4 applying the particular configuration directive only when the configuration 

5 information has the number of required signatures by the required principals 

6 and only upon successively validating all required signatures. 

1 15. (Original) A method as recited in Claim 8, wherein the digital signatures use 

2 public key cryptography, and wherein public keys for the digital signatures are stored 

3 on the host. 

1 16. (Original) A method as recited in Claim 8, wherein the digital signatures use 

2 public key cryptography, wherein public keys for the digital signatures are stored on a 

3 key server and retrieved from the key server as part of attempting to validate the 

4 digital signatures. 

1 1 7. (Original) A method as recited in Claim 8, wherein the digital signatures use 

2 public key cryptography, and wherein public keys for the digital signatures received 

3 in a digital certificate and extracted from the digital certificate as part of attempting to 

4 validate the digital signatures. 

1 18. (Original) A method for verifying configuration changes for network devices 

2 using digital signatures, comprising the computer-implemented steps of: 

3 receiving a public key for a user of the network devices; 

4 receiving configuration control information that includes a time period during which 

5 a valid digital signature is required for applying one or more particular 

6 configuration directives to a specified network device; 

7 receiving configuration information comprising a hostname, one or more 

8 configuration directives for the specified network device associated with the 

9 hostname, one or more digital signatures of the hostname and configuration 

1 0 directives, and a date-time value; 

1 1 determining if the date-time value is within the time period; 

12 determining if the one or more configuration directives have been previously received 

13 during the time period, by generating a secure hash of the one or more 
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14 configuration directives and determining if the secure hash is found in 

15 memory; and 

1 6 only when the date-time value is within the time period and the one or more 

1 7 configuration directives have not been previously received during the time 

1 8 period, performing the steps of: 

19 attempting to verify the one or more digital signatures based on generating a 

20 secure hash of the one or more configuration directives using the 

2 1 public key and comparing the secure hash to the one or more digital 

22 signatures, 

23 and applying the configuration directives to a network element only when the 

24 one or more digital signatures are verified successfully. 

1 1 9. (Original) A method as recited in any of Claims 1 , 8, or 1 8, wherein the one or 

2 more digital signatures comprise a first digital signature of the one or more 

3 configuration directives by a first user, and a second digital signature by a second 

4 user, wherein the second digital signature is applied to a resultant of the first digital 

5 signature. 

1 20. (Original) A method as recited in any of Claims 1 , 8, or 1 8, wherein the one or 

2 more digital signatures comprise a first digital signature of a first portion of the one or 

3 more configuration directives by a first user, a second digital signature of a second 

4 portion of the one or more configuration directives by a second user, and a third 

5 digital signature by a third user, wherein the third digital signature is applied to a 

6 resultant of the first digital signature and the second digital signature. 

1 21 . (Currently Amended) A computer-readable medium carrying one or more 

2 sequences of instructions for verifying configuration changes for network devices 

3 using digital signatures, which instructions, when executed by one or more 

4 processors, cause the one or more processors to carry out the steps of: 

5 receiving trust information defining one or more trusted signatories; 

6 receiving configuration information comprising a hostname, one or more 

7 configuration directives for a host network element associated with the 
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8 hostname, and one or more digital signatures of the hostname and 

9 configuration directives; 

1 0 attempting to verify the one or more digital signatures based on the trust information; 

11 verifying that two or more digital signatures, from the one or more digital signatures, 

12 are valid and that two or more principals respectively associated with the two 

13 or more digital signatures have collective authority to perform the 

14 configuration directives on the host network element; 

1 5 applying the configuration directives to [[a]] the host network element only when the 

16 one or more digital signatures are verified successfully. 

1 22. (Canceled) 

1 23 . (Original) A computer-readable medium as recited in Claim 2 1 , wherein the one 

2 or more digital signatures comprise a first digital signature of the one or more 

3 configuration directives by a first user, and a second digital signature by a second 

4 user, wherein the second digital signature is applied to a resultant of the first digital 

5 signature. 

1 24. (Original) A computer-readable medium as recited in Claim 2 1 , wherein the one 

2 or more digital signatures comprise a first digital signature of a first portion of the one 

3 or more configuration directives by a first user, a second digital signature of a second 

4 portion of the one or more configuration directives by a second user, and a third 

5 digital signature by a third user, wherein the third digital signature is applied to a 

6 resultant of the first digital signature and the second digital signature. 

1 25. (Currently Amended) An apparatus for verifying configuration changes for network 

2 devices using digital signatures, comprising: 

3 means for receiving trust information defining one or more trusted signatories; 

4 means for receiving configuration information comprising a hostname, one or more 

5 configuration directives for a host network element associated with the 

6 hostname, and one or more digital signatures of the hostname and 

7 configuration directives; 
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8 means for attempting to verify the one or more digital signatures based on the trust 

9 information; 

10 means for verifying that two or more digital signatures, from the one or more digital 

11 signatures, are valid and that two or more principals respectively associated 

12 with the two or more digital signatures have collective authority to perform 

13 the configuration directives on the host network element; 

14 means for applying the configuration directives to [[a]] the host network element only 

1 5 when the one or more digital signatures are verified successfully. 

1 26. (Canceled) 

1 27. (Original) An apparatus as recited in Claim 25, wherein the one or more digital 

2 signatures comprise a first digital signature of the one or more configuration 

3 directives by a first user, and a second digital signature by a second user, wherein the 

4 second digital signature is applied to a resultant of the first digital signature. 

1 28. (Original) An apparatus as recited in Claim 25, wherein the one or more digital 

2 signatures comprise a first digital signature of a first portion of the one or more 

3 configuration directives by a first user, a second digital signature of a second portion 

4 of the one or more configuration directives by a second user, and a third digital 

5 signature by a third user, wherein the third digital signature is applied to a resultant of 

6 the first digital signature and the second digital signature. 

1 29. (Currently Amended) An apparatus for verifying configuration changes for network 

2 devices using digital signatures, comprising: 

3 a network interface that is coupled to the data network for receiving one or more 

4 packet flows therefrom; 

5 a processor; 

6 one or more stored sequences of instructions which, when executed by the processor, 

7 cause the processor to carry out the steps of: 

8 receiving trust information defining one or more trusted signatories; 
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9 receiving configuration information comprising a hostname, one or more 

1 0 configuration directives for a host network element associated with the 

1 1 hostname, and one or more digital signatures of the hostname and 

1 2 configuration directives; 

13 attempting to verify the one or more digital signatures based on the trust 

14 information; 

15 verifying that two or more digital signatures, from the one or more digital 

16 signatures, are valid and that two or more principals respectively 

17 associated with the two or more digital signatures have collective 

18 authority to perform the configuration directives on the host network 

19 element; 

20 applying the configuration directives to [[a]] the host network element only 

21 when the one or more digital signatures are verified successfully. 

1 30. (Canceled) 

1 31. (Original) An apparatus as recited in Claim 29, wherein the one or more digital 

2 signatures comprise a first digital signature of the one or more configuration 

3 directives by a first user, and a second digital signature by a second user, wherein the 

4 second digital signature is applied to a resultant of the first digital signature. 

1 32. (Original) An apparatus as recited in Claim 29, wherein the one or more digital 

2 signatures comprise a first digital signature of a first portion of the one or more 

3 configuration directives by a first user, a second digital signature of a second portion 

4 of the one or more configuration directives by a second user, and a third digital 

5 signature by a third user, wherein the third digital signature is applied to a resultant of 

6 the first digital signature and the second digital signature. 

1 33. (New) A computer-readable medium as recited in Claim 21, further comprising 

2 instructions which, when executed by the one or more processors, cause the one or 

3 more processors to perform the steps of: 
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4 receiving, in association with a particular configuration directive, security 

5 information defining a number of required signatures and required principals; 

6 applying the particular configuration directive only when the configuration 

7 information has the number of required signatures by the required principals. 

1 34. (New) A computer-readable medium as recited in Claim 2 1 , further comprising 

2 instructions which, when executed by the one or more processors, cause the one or 

3 more processors to perform the steps of: 

4 receiving, in association with a particular configuration directive, security 

5 information defining a number of required signatures and required principals; 

6 applying the particular configuration directive only when the configuration 

7 information has the number of required signatures by the required principals 

8 and only upon successively validating all required signatures. 

1 35. (New) A computer-readable medium as recited in Claim 21, wherein the digital 

2 signatures use public key cryptography, and wherein public keys for the digital 

3 signatures are stored on the host network element. 

1 36. (New) A computer-readable medium as recited in Claim 21, wherein the digital 

2 signatures use public key cryptography, wherein public keys for the digital signatures 

3 are stored on a key server and retrieved from the key server as part of attempting to 

4 validate the digital signatures. 

1 37. (New) A computer-readable medium as recited in Claim 2 1 , wherein the digital 

2 signatures use public key cryptography, and wherein public keys for the digital 

3 signatures received in a digital certificate and extracted from the digital certificate as 

4 part of attempting to validate the digital signatures. 

1 38. (New) An apparatus as recited in Claim 25, further comprising: 

2 means for receiving, in association with a particular configuration directive, security 

3 information defining a number of required signatures and required principals; 
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4 means for applying the particular configuration directive only when the configuration 

5 information has the number of required signatures by the required principals. 

1 39. (New) An apparatus as recited in Claim 25, further comprising: 

2 means for receiving, in association with a particular configuration directive, security 

3 information defining a number of required signatures and required principals; 

4 means for applying the particular configuration directive only when the configuration 

5 information has the number of required signatures by the required principals 

6 - and only upon successively validating all required signatures. 

1 40. (New) An apparatus as recited in Claim 25, wherein the digital signatures use public 

2 key cryptography, and wherein public keys for the digital signatures are stored on the 

3 host network element. 

1 41 . (New) An apparatus as recited in Claim 25, wherein the digital signatures use public 

2 key cryptography, wherein public keys for the digital signatures are stored on a key 

3 server and retrieved from the key server as part of attempting to validate the digital 

4 signatures. 

1 42. (New) An apparatus as recited in Claim 25, wherein the digital signatures use public 

2 key cryptography, and wherein public keys for the digital signatures received in a 

3 digital certificate and extracted from the digital certificate as part of attempting to 

4 validate the digital signatures. 

1 43. (New) An apparatus as recited in Claim 29, further comprising instructions which, 

2 when executed by the one or more processors, cause the one or more processors to 

3 perform the steps of: 

4 receiving, in association with a particular configuration directive, security 

5 information defining a number of required signatures and required principals; 

6 applying the particular configuration directive only when the configuration 

7 information has the number of required signatures by the required principals. 
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1 44. (New) An apparatus as recited in Claim 29, further comprising instructions which, 

2 when executed by the one or more processors, cause the one or more processors to 

3 perform the steps of: 

4 receiving, in association with a particular configuration directive, security 

5 information defining a number of required signatures and required principals; 

6 applying the particular configuration directive only when the configuration 

7 information has the number of required signatures by the required principals 

8 and only upon successively validating all required signatures. 

1 45. (New) An apparatus as recited in Claim 29, wherein the digital signatures use public 

2 key cryptography, and wherein public keys for the digital signatures are stored on the 

3 host network element. 

1 46. (New) An apparatus as recited in Claim 29, wherein the digital signatures use public 

2 key cryptography, wherein public keys for the digital signatures are stored on a key 

3 server and retrieved from the key server as part of attempting to validate the digital 

4 signatures. 

1 47. (New) An apparatus as recited in Claim 29, wherein the digital signatures use public 

2 key cryptography, and wherein public keys for the digital signatures received in a 

3 digital certificate and extracted from the digital certificate as part of attempting to 

4 validate the digital signatures. 
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